Download as PDF, PPTX
MA
Uploaded byMITRE ATT&CK
PDF, PPTX32 views
Using ATT&CK to created wicked actors in real data
The document discusses the use of MITRE ATT&CK framework to create realistic cyber adversaries for training and skill development in cybersecurity. It highlights the limitations of traditional simulated intrusion data and presents the KC7 Foundation's approach to quickly generate updated attack configurations and enhance analytical skills. The end goal is to provide practical insights into real-world techniques and their effectiveness.
More Related Content
More from MITRE ATT&CK
Using ATT&CK to created wicked actors in real data
- 1. Using ATT&CK ToCreate Wicked Actors in Real Data Simeon Kakpovi Greg Schloemer
- 2. About Us Greg Schloemer VicePresident, KC7 Foundation Threat Intel Analyst (Microsoft) Simeon Kakpovi President, KC7 Foundation Sr Threat Intel Analyst (Microsoft) +10 expert cybersecurity analysts, educators, lawyers
- 4. The Problem Access toreal intrusion data Develop analytical skills How do you break in? Get a cybersecurity job
- 5. Simulated Intrusion Data:How it’s been done Takes weeks/months Outdated TTPs Static, low replay value
- 6. The KC7 Approach Configsbuilt in minutes Model latest TTPs New data in seconds
- 7. Threat Intel ProductionCycle++
- 8. Bringing TAs Backto Life
- 9. Using building blocksto recreate actors
- 10. Pre-built ATT&CK Techniquesare building blocks for standard adversary behavior
- 11. Putting ATT&CK inPractice
- 12. Final Result: Whatdoes XYZ technique look like?
- 13.